[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#261189: ITP: libsrs -- official ANSI C sender rewriting scheme (SRS) library

Package: wnpp
Severity: wishlist

* Package name    : libsrs
  Version         : 1.0.0 rc1
  Upstream Author : James Couzens <jcouzens@codeshare.ca>
* URL             : http://www.librs.org
* License         : see below
  Description     : official ANSI C sender rewriting scheme (SRS) library

libSRS is an ANSI[0] C implementation of one proposed solution to the
SPF[1] ("Sender Policy Framework") forwarding problem.  Through the very
nature of forwarding SPF checks fail when a forwarder does its intended
job because the Email is now literally being forged, or to be more
politically correct, "delivered on behalf of" :-).  libSRS attempts to
implement a solution for this using strong cryptographic HMAC's embedded
within the local-part (hence the name "rewriting scheme") to enable
messages to change hands and still retain information stored in a secure
fashion so as to faciliate the passing of SPF checks when the message
does finally arrive at its destination.

libSRS is currently in the "Release Client" stage on its way to a STABLE
version.  Previous to recently, no code was changed since early 2004,
and only recently relating to changes in the specification.  The
development branch of libSRS contains feature enhancements such as an
independent hashing algorithm designed to act as an alternative to the
reliable but somewhat slow OpenSSL (although to be perfectly honest,
OpenSSL is MORE than adequate for this purpose, is better then any
hashing implementation I'm ever to likely write, and is readily
available everywhere).

[0] to support the method of debugging employed in libSRS the library
looses its C/89 compliance to take advantage of Variadic Arguments
(__VA_VARARGS__) which are taken from the ISO C/99 C standard.  Any
stable branch of libSRS will loose the debugging code and reclaim C/89
compliant status.

[1] SPF is formerly known as Sender Permitted From

-- System Information:
Debian Release: testing/unstable
  APT prefers testing
  APT policy: (600, 'testing'), (98, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.7-1-k7
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8

Please do not CC me when replying to lists; I read them!
 .''`.     martin f. krafft <madduck@debian.org>
: :'  :    proud Debian developer, admin, and user
`. `'`
  `-  Debian - when you have better things to do than fixing a system
Invalid/expired PGP subkeys? Use subkeys.pgp.net as keyserver!

Attachment: signature.asc
Description: Digital signature

Reply to: